$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3130332e3234302e3234342e302f32322d3232203d3e203633363437.roa File: 3130332e3234302e3234342e302f32322d3232203d3e203633363437.roa (raw, json) Hash identifier: BZUtNrmGxyr+YCQF59SwBbfECbTmh81zwDxpWY2yKmo= Subject key identifier: D5:F9:42:00:21:7E:6F:17:63:D2:7B:93:A0:CD:83:08:3D:74:4D:79 Certificate issuer: /CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Certificate serial: 45FFE2385B537A7B9D4418A33A7D005259785E48 Authority key identifier: C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3130332e3234302e3234342e302f32322d3232203d3e203633363437.roa Signing time: Mon 13 Apr 2026 08:15:03 +0000 ROA not before: Mon 13 Apr 2026 08:10:03 +0000 ROA not after: Mon 12 Apr 2027 08:15:03 +0000 asID: 63647 IP address blocks: 103.240.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:ff:e2:38:5b:53:7a:7b:9d:44:18:a3:3a:7d:00:52:59:78:5e:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Validity Not Before: Apr 13 08:10:03 2026 GMT Not After : Apr 12 08:15:03 2027 GMT Subject: CN=D5F94200217E6F1763D27B93A0CD83083D744D79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:78:76:b4:9c:67:97:de:d6:07:a4:13:c1:48: 16:57:49:64:ee:22:8b:c5:c0:1a:1b:c0:f4:a5:77: 64:da:2c:9e:a6:91:38:fe:e6:94:74:3e:63:bb:29: a8:29:3b:f0:bf:c4:7b:09:dd:08:56:63:0c:d8:cf: 9a:4c:2d:17:6b:8d:54:ed:60:49:6c:d2:30:b0:6f: d7:08:9a:9a:03:0b:43:69:50:cf:db:64:87:1c:9e: 23:ba:96:8c:db:ff:9b:50:39:bb:f8:ec:50:a9:db: bb:19:3c:0a:16:f1:fb:b4:f4:93:4f:ae:db:97:2f: 92:d9:b2:44:38:8e:cf:91:bb:6a:8e:bc:08:d7:e2: 0c:b7:81:d7:a4:34:bc:52:58:b6:6e:c7:6b:1e:ba: a9:e6:76:15:4d:48:53:f3:06:e0:72:50:9d:bb:18: 93:16:be:fb:e9:51:92:f1:d7:5f:79:69:eb:bf:f5: d0:24:bd:7c:6a:9a:30:0c:29:7c:1f:4a:77:e8:cf: a6:d2:23:8e:63:7b:dd:f0:8b:54:bd:f6:a6:e3:60: 32:f9:c7:5d:f3:21:15:a9:76:77:d6:28:04:23:3e: d6:ff:36:a6:56:99:4e:02:4a:99:3a:69:b7:97:cd: 99:89:7b:e7:3c:77:70:8d:1f:4b:58:f6:41:fa:9d: d0:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:F9:42:00:21:7E:6F:17:63:D2:7B:93:A0:CD:83:08:3D:74:4D:79 X509v3 Authority Key Identifier: keyid:C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3130332e3234302e3234342e302f32322d3232203d3e203633363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.240.244.0/22 Signature Algorithm: sha256WithRSAEncryption 76:f2:7e:2a:c3:fd:13:2d:55:73:0d:8a:35:32:b6:41:5b:9b: 76:d3:50:3f:1a:33:e5:09:9e:01:cd:91:6f:b8:49:e2:bd:33: 0c:70:b2:e9:cd:ac:54:17:16:c1:ae:37:96:65:03:0a:9a:c3: 9e:36:9a:d7:33:54:5a:fd:05:ef:d4:e5:b6:23:c6:f7:15:fb: f3:20:f1:87:88:55:80:57:7f:dd:0d:bc:df:ba:6d:37:df:17: 88:0c:c4:b6:65:84:a9:e5:ee:44:b3:f8:db:bd:7e:40:12:6f: 9b:de:a4:9a:d2:35:a2:b5:1b:98:e3:72:4a:55:94:25:f3:2d: c0:18:87:33:75:71:16:7a:87:a7:d1:63:82:60:a4:61:94:d7: 29:41:3d:02:96:04:84:69:e2:47:a6:5a:45:34:2f:18:ad:0b: 56:b4:06:5a:2c:25:cd:3c:cf:4e:b8:c3:52:4a:b7:e7:70:b4: d3:7c:9c:c0:67:f3:fb:7e:7b:fc:d4:d0:ce:43:cd:ed:01:33: 0d:9c:51:15:a8:01:bb:e7:5e:8d:9f:b8:8c:c9:f4:3c:26:59: e4:b3:01:6d:36:b4:66:46:8d:c1:9f:6e:48:4a:ce:94:ed:58: 59:68:80:12:7b:f2:48:a4:34:bb:7b:ad:d5:23:22:db:49:7c: 98:48:87:a9 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIURf/iOFtTenudRBijOn0AUll4XkgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1 QUQzRjM5ODAeFw0yNjA0MTMwODEwMDNaFw0yNzA0MTIwODE1MDNaMDMxMTAvBgNV BAMTKEQ1Rjk0MjAwMjE3RTZGMTc2M0QyN0I5M0EwQ0Q4MzA4M0Q3NDRENzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpeHa0nGeX3tYHpBPBSBZXSWTu IovFwBobwPSld2TaLJ6mkTj+5pR0PmO7KagpO/C/xHsJ3QhWYwzYz5pMLRdrjVTt YEls0jCwb9cImpoDC0NpUM/bZIccniO6lozb/5tQObv47FCp27sZPAoW8fu09JNP rtuXL5LZskQ4js+Ru2qOvAjX4gy3gdekNLxSWLZux2seuqnmdhVNSFPzBuByUJ27 GJMWvvvpUZLx1195aeu/9dAkvXxqmjAMKXwfSnfoz6bSI45je93wi1S99qbjYDL5 x13zIRWpdnfWKAQjPtb/NqZWmU4CSpk6abeXzZmJe+c8d3CNH0tY9kH6ndChAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU1flCACF+bxdj0nuToM2DCD10TXkwHwYDVR0j BBgwFoAUwcSPlZPWoZ29P6ypxu+ltVrT85gwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk3ODMxNjg4NTY1NTU1NS8wL0MxQzQ4Rjk1OTNENkExOURCRDNGQUNBOUM2RUZB NUI1NUFEM0YzOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1QUQzRjM5OC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5NzgzMTY4ODU2NTU1NTUvMC8zMTMwMzMyZTMy MzQzMDJlMzIzNDM0MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzYzMzM2MzQzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfw9DANBgkqhkiG9w0BAQsFAAOCAQEAdvJ+KsP9Ey1Vcw2KNTK2 QVubdtNQPxoz5QmeAc2Rb7hJ4r0zDHCy6c2sVBcWwa43lmUDCprDnjaa1zNUWv0F 79TltiPG9xX78yDxh4hVgFd/3Q2837ptN98XiAzEtmWEqeXuRLP4271+QBJvm96k mtI1orUbmONySlWUJfMtwBiHM3VxFnqHp9FjgmCkYZTXKUE9ApYEhGniR6ZaRTQv GK0LVrQGWiwlzTzPTrjDUkq353C003ycwGfz+357/NTQzkPN7QEzDZxRFagBu+de jZ+4jMn0PCZZ5LMBbTa0ZkaNwZ9uSErOlO1YWWiAEnvySKQ0u3ut1SMi20l8mEiH qQ== -----END CERTIFICATE-----Generated at Sat Apr 18 02:43:08 2026 by rpki-client